Cyber News

Cybercrime Group ‘Muddled Libra’ Targets BPO Sector with Advanced Social Engineering

A threat actor known as Muddled Libra is targeting the business process outsourcing (BPO) ..

The Power of Browser Fingerprinting: Personalized UX, Fraud Detection, and Secure Logins

The case for browser fingerprinting: personalizing user experience, improving fraud detection, and optimizing login security

Have you ever heard of browser fingerprinting? You should! It’s an online user identification technique that collects information about a visitor’s web browser and its configuration ..

Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware

A new strain of JavaScript dropper has been observed delivering next-stage payloads like Bumblebee and IcedID.

Cybersecurity firm Deep Instinct is tracking the malware as PindOS, which contains the name in its “User-Agent” string…

NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems

The U.S. National Security Agency (NSA) on Thursday released guidance to help organizations detect and prevent infections of a Unified Extensible Firmware Interface (UEFI) bootkit called BlackLotus

New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices

Internet-facing Linux systems and Internet of Things (IoT) devices are being targeted as part of a new campaign designed to illicitly mine cryptocurrency.

“The threat actors behind the attack use a backdoor that deploys a wide array of tools and components such as rootkits and …

Generative-AI apps & ChatGPT: Potential risks and mitigation strategies

Losing sleep over Generative-AI apps? You’re not alone or wrong. According to the Astrix Security Research Group, mid size organizations already have, on average, 54 Generative-AI integrations to core systems like Slack, GitHub and Google Workspace and this number is only expected to grow.

Alert: Million of GitHub Repositories Likely Vulnerable to RepoJacking Attack

A large number of programming stores on GitHub are reasonable helpless against an assault called RepoJacking, another review has uncovered.

This incorporates storehouses from associations like Google, Lyft, and a few others, Massachusetts-based cloud-local security…

Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware

The Chinese digital undercover work entertainer known as Camaro Mythical serpent has been noticed utilizing another type of self-engendering malware that spreads through compromised USB drives.

    The European Union is set to investigate X for possible violations of disinformation laws.

    The European Union has initiated an inquiry into the social media entity X, previously identified as Twitter, for a potential violation of obligations. This investigation marks the first under the Digital Services Act (DSA), which became effective in November of the preceding year. 

      A German court suspects an AI system is behind a surge in lawsuits.

      The European Union has initiated an inquiry into the social media entity X, previously identified as Twitter, for a potential violation of obligations. This investigation marks the first under the Digital Services Act (DSA), which became effective in November of the preceding year. 

        Reportedly, the proliferation of AI-generated websites is accelerating the dissemination of misinformation.

        Since May 2023, the number of websites hosting fabricated articles generated by artificial intelligence (AI) has surged by over 1,000%, according to findings by NewsGuard, an organization specializing in tracking misinformation. 

          YouTube has removed 19 channels that were promoting anti-US narratives.

          A widespread campaign, referred to as ‘Shadow Play’ by the Australian Strategic Policy Institute (ASPI), has exploited Synthesia, a British AI company, to create convincing avatars in video essays promoting pro-China and anti-US narratives.

            China is set to implement a ten-minute response time requirement for handling data breaches.

            China has released a draft Contingency Plan for data security incidents, introducing stringent deadlines for addressing significant breaches. The proposed plan includes a four-tier classification system aimed at enhancing China’s response to data security incidents,

            Google to limit advertisers’ use of browser tracking cookies

            Google has announced plans to test a feature called Tracking Protection on its Chrome browser, beginning on January 4, with the aim of eventually banning third-party cookies used by advertisers to track users.

            UK’s Newsquest media group disrupted by cyberattack

            Newsquest, one of the UK’s major regional media groups, faced a cyberattack on December 11th, causing disruptions at its local news outlets. The attack led to intermittent website outages, preventing journalists from filing stories.